CVE-2008-6142 Information
Feb 14, 2021
cve
Description
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPic 0.0.4 and FlexPHPic Pro 0.0.3 and other 0.0.x versions allow remote attackers to execute arbitrary SQL commands via (1) the checkuser parameter (aka username field) or (2) the checkpass parameter (aka password field) to admin/index.php.
Reference
http://secunia.com/advisories/33376 https://exchange.xforce.ibmcloud.com/vulnerabilities/47653 https://www.exploit-db.com/exploits/7624
Share on: